Текст страницы
10.21 Trusted Computing Group Feature Set
This chapter provides information on Western Digital encryption-specific HDD firmware and features. It is assumed
that the reader is familiar with the referenced specifications and industry standards.
10.21.1 Referenced Specifications and Standards
10.21.1.1 TCG Specifications
This section references 3 separate TCG specifications, which are available on the TCG website:
(http://www.trustedcomputinggroup.org/):
12.10.6.1
TCG Core Specification, Version 2.01, Revision 1.00 (08/15/2015)
- The TCG Core Specification is the general specification for trusted computing that encompasses all classes
of devices, including storage
12.10.6.2
TCG Storage Interface Interactions Specification (SIIS), Version 1.07, (1/30/2013)
- Specifies the interaction between the HDD and the SCSI/ATA protocols
12.10.6.3
TCG Storage Security Subsystem Class (SSC): Enterprise, Version 1.01, rev 1.00 (8/5/2015)
- A Security Subsystem Class defines minimum acceptable Core Specification capabilities of a storage
device in a specific class (in our case – enterprise).
- Storage devices in specific classes may have a subset of the capabilities that are defined in the core
specification
12.10.6.4
TCG Storage Security Subsystem Class: Opal Specification, Version 2.01 Revision 1.00
(8/5/2015)
10.21.1.2 Federal Information Processing Standards (FIPS)
This section references the following Federal Information Processing Standards, published by the US National
Institute of Standards (NIST), which are available on the NIST website (http://www.itl.nist.gov/fipspubs/ ):
1. FIPS 197, Advanced Encryption Standard (AES), 2001 November 26.
http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf
2. FIPS 180-4, Secure Hash Standard (SHS), August 2015
http://csrc.nist.gov/publications/fips/fips180-4/fips180-4_final.pdf
10.21.1.3 National Institute of Standards (NIST)
This section references the following NIST publications, available on the NIST website
(http://www.nist.gov/index.html)
• [AES] Advanced Encryption Standard, FIPS PUB 197, NIST, 2001, November
• [DSS] Digital Signature Standard, FIPS PUB 186-4, NIST, 2013, July
• [HMAC] The Keyed-Hash Message Authentication Code, FIPS PUB 198-1, 2008 July
• [SHA] Secure Hash Standard (SHS), FIPS PUB 180-4, NIST, 2015 August
• [SP800-38E] Recommendation for Block Cipher Modes of Operation: The XTS-AES Mode for Confidentiality
on Storage Devices, SP800-38E, NIST, 2010 January
• [SP800-38F] Recommendation for Block Cipher Modes of Operation: Methods for Key Wrapping, NIST, 2012
December
• [SP800-57] Recommendation for Key Management – Part I General (Revision 4), NIST, 2016 January
• [SP800-90A] Recommendation for Random Number Generation Using Deterministic Random Bit Generators,
NIST, 2015 June
• [SP800-90B] Recommendation for the Entropy Sources Used for Random Bit Generation, NIST, 2018 January
• [SP800-131A] Transitions: Recommendation for Transitioning the Use of Cryptographic Algorithms and Key
Lengths (Revision 2), NIST, 2019 March
• [SP800-132] Recommendation for Password-Based Key Derivation, NIST, 2010 December
• [SP800-133] Recommendation for Cryptographic Key Generation (Revision 2), NIST, June 2020
108
Hard Disk Drive Specification